Privacy Protocol

This Privacy Protocol explains how GPT Image 2 collects, uses, stores, and protects information when you use the website, generation tools, account features, payment flows, share pages, and support channels.

The service processes prompts, generated image URLs, account identifiers, billing events, and technical logs needed to operate the product.

We may receive account information such as email, profile name, avatar, and authentication identifier from your sign-in provider.

We process prompts, model options, generation mode, reference-image status, generated image URLs, share metadata, saved history, Stripe billing metadata, security signals, cookies, session tokens, error logs, and analytics events.

We use information to provide generation, editing, account history, public share pages, downloads, billing access, credit balances, customer support, abuse prevention, diagnostics, and product analytics.

We do not sell personal information or use private prompts and generated images to advertise unrelated third-party products.

When you create a share page, the prompt, generation metadata, and generated images are stored so the public URL can work.

Shared images may be copied into Cloudflare R2 for durable delivery. Share records may be retained for up to 180 days unless removed earlier for operational, legal, or abuse-prevention reasons.

We use cookies and similar storage for sessions, locale preferences, checkout state, abuse prevention, and interface behavior such as promotional dialogs.

If Cloudflare Turnstile is enabled, challenge data is sent to Cloudflare to reduce automated abuse in sign-in flows.

We rely on providers including Cloudflare, Stripe, Google authentication, analytics providers, and upstream image generation providers.

These providers process information only as needed to provide their services to us, subject to their own terms and privacy commitments.

Account, entitlement, billing, and operational records are retained as long as needed to provide the service, resolve disputes, comply with law, prevent abuse, and maintain financial records.

You can contact us to request deletion or review of account-related data. Some records may be retained for fraud prevention, tax, accounting, chargeback, or legal obligations.

You may choose not to create public share links, clear browser storage, disable nonessential analytics through browser controls where available, or contact us for account and billing support.

For cancellations, billing questions, plan changes, privacy requests, or data questions, contact wangneo276@gmail.com.

We use practical safeguards including authenticated account flows, server-side billing checks, Cloudflare security controls, scoped storage bindings, and restricted image download/proxy behavior.

No internet service can guarantee perfect security. Avoid submitting sensitive personal, financial, medical, legal, or confidential business information in prompts or public share pages.

We may update this Privacy Protocol as the product, infrastructure, laws, or vendor relationships change. The latest version posted on this page governs use of the service after publication.